Slawomir Jasek

4 exploits Active since May 2014
CVE-2013-6805 WRITEUP WORKING POC
OpenText Exceed OnDemand 8 - Weak Password Encryption
OpenText Exceed OnDemand (EoD) 8 uses weak encryption for passwords, which makes it easier for (1) remote attackers to discover credentials by sniffing the network or (2) local users to discover credentials by reading a .eod8 file.
CVE-2013-6806 WRITEUP WORKING POC
OpenText Exceed OnDemand 8 - Man-in-the-Middle Authentication Downgrade via Crafted Response
OpenText Exceed OnDemand (EoD) 8 allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information via a crafted string in a response, which triggers a downgrade to simple authentication that sends credentials in plaintext.
CVE-2013-6807 WRITEUP WORKING POC
OpenText Exceed OnDemand 8 - Man-in-the-Middle Attack via Anonymous Cipher Support
The client in OpenText Exceed OnDemand (EoD) 8 supports anonymous ciphers by default, which allows man-in-the-middle attackers to bypass server certificate validation, redirect a connection, and obtain sensitive information via crafted responses.
CVE-2013-6994 WRITEUP WORKING POC
OpenText Exceed OnDemand 8 - Session Fixation via Cleartext Session ID Transmission
OpenText Exceed OnDemand (EoD) 8 transmits the session ID in cleartext, which allows remote attackers to perform session fixation attacks by sniffing the network.